implement workflow to scan latest released docker image

[ImpSy]

Purpose of this PR

Following discussion on this issue #2169
This PR add image scanning using trivy

Proposed changes:

• add new github workflow to scan latest released image

Change Category

Indicate the type of change by marking the applicable boxes:

• Bugfix (non-breaking change which fixes an issue)
• Feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that could affect existing functionality)
• Documentation update

Checklist

Before submitting your PR, please review the following:

• I have conducted a self-review of my own code.
• I have updated documentation accordingly.
• I have added tests that prove my changes are effective or that my feature works.
• Existing unit tests pass locally with my changes.

Additional Notes

I've run this action on my fork and it returned error to the Security tab correctly -> https://github.com/spotinst/spark-on-k8s-operator/actions/runs/10903921403/job/30259104130

[ChenYi015]

@ImpSy Thanks for the contribution! LGTM, will wait for another approval @yuchaoran2011 @vara-bonthu @jacobsalway .

[jacobsalway]

Did a test run from my work and it looks good to me, however it seems like Mediums and Lows are still being uploaded to the Security tab. Is this expected or do we need to dig into this more? Not a blocker for me since we can just filter to Critical and High when looking at the results.

[vara-bonthu]

/lgtm

[google-oss-prow]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: vara-bonthu

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [vara-bonthu]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment